Linux admins -

It's easy to forget that Apache server in the closet or the monitoring system that's been running in the datacenter non-stop for a few years, but that's exactly what the threat actors are counting on. It was recently discovered that cybercriminals are inserting new types of malware into Apache servers that should have been patched many years ago. Hackers hide their payloads on compromised, legitimate sites to avoid detection.

Learn more about these threats, what they're doing once they have access to your critical infrastructure, and how you can stop them. Hint: It's all about focusing on poorly monitored systems with real computing power to gain access to your high-value targets.

Yours in Open Source,

Dv Signature Newsletter 2024 Esm W150

Dave Wreski

LinuxSecurity Founder

Apache HTTP Server 

The Discovery 

Attackers are actively exploiting an old security issue in Apache HTTP server versions 2.4.49 and 2.4.50 (CVE-2021-41773) to deploy the Linuxsys cryptominer. The campaign exhibits a notable level of stealth and efficiency, making detection and mitigation particularly challenging.

Apache2 Esm W400

 The Impact

This flaw enables attackers to mine Monero cryptocurrency on affected systems.

The Fix

Patches have been released to fix this bug, but many impacted users still have not applied them. Be sure to update immediately (if you have not already) to secure your server and prevent costly exploits.

Your Related Advisories:

[distro_list_1]

ImageMagick

The Discovery 

A critical stack buffer overflow has been discovered in the InterpretImageFilename() function within ImageMagick’s image.c file.

Imagemagick Esm W221

The Impact

If exploited, an attacker could execute arbitrary code, trigger system crashes, or even force denial-of-service (DoS) conditions.

The Fix

ImageMagick has released versions 7.1.2-0 and 6.9.13-26 to patch this issue. All impacted users should update immediately to secure their systems and prevent operational disruptions.

Your Related Advisories:

[distro_list_2]